$ rpki-client -vvf rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/A023DD56B12F11EEB1221E32C4F9AE02.roa File: A023DD56B12F11EEB1221E32C4F9AE02.roa (raw, json) Hash identifier: NmbBdfuCudYxF5RZcp9GpJHBkLSfYF/OMfMDOKpiQbY= Subject key identifier: 35:E4:96:E3:CF:81:72:D7:7D:19:42:C2:EE:62:F7:7B:50:49:F7:A7 Certificate issuer: /CN=A9161322/serialNumber=9873889783F7530EB44BE0097AA3618B07168F3B Certificate serial: CA Authority key identifier: 98:73:88:97:83:F7:53:0E:B4:4B:E0:09:7A:A3:61:8B:07:16:8F:3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mHOIl4P3Uw60S-AJeqNhiwcWjzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/A023DD56B12F11EEB1221E32C4F9AE02.roa Signing time: Mon 03 Feb 2025 04:29:02 +0000 ROA not before: Mon 03 Feb 2025 04:29:02 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152328 IP address blocks: 157.10.172.0/23 maxlen: 23 157.10.172.0/24 maxlen: 24 157.10.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/mHOIl4P3Uw60S-AJeqNhiwcWjzs.crl rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/mHOIl4P3Uw60S-AJeqNhiwcWjzs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mHOIl4P3Uw60S-AJeqNhiwcWjzs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161322, serialNumber=9873889783F7530EB44BE0097AA3618B07168F3B Validity Not Before: Feb 3 04:29:02 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a0460e-7198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4e:69:69:83:33:4a:a7:fe:e8:a7:93:b2:f4: ba:aa:ba:05:00:e7:6e:a6:fb:e0:aa:fe:ce:21:c7: 4d:64:e7:3a:5d:58:8e:43:8f:9e:cf:6d:bf:48:8d: d9:4e:de:df:aa:cb:c3:43:14:38:6e:0b:86:a9:30: e3:c0:2d:d5:66:cf:97:81:f9:99:5d:05:4e:94:59: 86:40:de:e4:d8:e6:7d:da:f4:e0:4e:f3:8e:29:75: 0e:d9:67:85:b1:8f:96:49:3b:ab:8a:08:f4:7f:ce: e1:fb:19:68:19:5c:b2:38:05:b7:29:26:d5:57:45: 2c:a0:e7:db:5d:18:d2:ae:7f:5b:40:8c:a0:8c:60: 29:e7:ef:6d:e8:9b:e7:93:6a:b2:95:80:13:0c:f5: 5a:8b:53:ed:a1:ab:5d:7d:da:f0:7c:41:0f:87:1f: 89:bb:de:f6:a0:82:cf:dd:62:8d:60:69:ac:aa:90: e6:1c:d0:d2:f8:4b:76:23:74:8f:28:25:cf:d7:3d: ea:fe:f2:6b:dc:da:f6:9b:89:06:dd:6d:98:99:33: a5:64:cd:1b:f2:af:a5:7c:1c:df:a3:81:ca:29:39: 82:c9:45:1d:2c:59:84:60:2e:14:7f:8a:a9:28:f2: aa:b4:1f:60:db:fe:dd:9e:f1:67:09:43:a7:47:dc: 04:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E4:96:E3:CF:81:72:D7:7D:19:42:C2:EE:62:F7:7B:50:49:F7:A7 X509v3 Authority Key Identifier: keyid:98:73:88:97:83:F7:53:0E:B4:4B:E0:09:7A:A3:61:8B:07:16:8F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/mHOIl4P3Uw60S-AJeqNhiwcWjzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mHOIl4P3Uw60S-AJeqNhiwcWjzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161322/49E4B008B0EB11EEB6989F54C4F9AE02/A023DD56B12F11EEB1221E32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.172.0/23 Signature Algorithm: sha256WithRSAEncryption 47:f0:f0:d9:04:a4:5c:c8:69:86:18:a6:13:5e:1d:93:6e:59: 39:88:3a:e4:0e:51:02:bd:d3:98:45:3f:91:79:71:39:48:03: 80:b1:33:69:96:3e:02:dd:a6:f6:20:28:10:81:88:6d:1a:29: ee:97:2f:4e:16:1f:28:f0:2e:64:35:fe:88:15:9d:6e:c0:96: ac:74:e9:67:a5:6c:e9:cb:53:a7:c3:b3:59:76:3d:1e:93:8d: 61:dd:0d:21:70:53:b1:8f:8f:30:bf:51:00:80:73:17:34:ab: 5c:0f:e8:0e:8a:89:df:e7:6b:45:fe:06:94:7e:01:2a:20:44: 76:5a:04:c5:18:e7:22:b3:12:0f:50:9e:0a:ee:e6:d4:46:a1: 36:a3:04:21:61:e7:8f:83:ca:c4:f0:33:7d:fe:d4:6e:13:75: 57:58:73:80:c4:26:33:53:39:ba:9f:9b:a9:a1:74:bb:d2:6f: fb:1a:a3:54:8d:b3:72:81:68:9e:4a:e4:fd:2d:80:c4:dd:c8: d5:bb:c2:93:31:66:49:79:8b:13:27:19:7a:2d:5a:ee:75:a2: 3f:82:70:a9:f7:cf:51:ad:91:5a:85:99:4b:5f:52:08:e1:57: c2:68:5f:3f:99:ce:69:dd:3e:f0:5e:0c:9b:c5:d8:b4:a5:45: fe:88:b2:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEzMjIxMTAvBgNVBAUTKDk4NzM4ODk3ODNGNzUzMEVCNDRCRTAwOTdBQTM2MThC MDcxNjhGM0IwHhcNMjUwMjAzMDQyOTAyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EwNDYwZS03MTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0U5paYMzSqf+6KeTsvS6qroFAOdupvvgqv7OIcdNZOc6XViOQ4+ez22/SI3Z Tt7fqsvDQxQ4bguGqTDjwC3VZs+XgfmZXQVOlFmGQN7k2OZ92vTgTvOOKXUO2WeF sY+WSTurigj0f87h+xloGVyyOAW3KSbVV0UsoOfbXRjSrn9bQIygjGAp5+9t6Jvn k2qylYATDPVai1PtoatdfdrwfEEPhx+Ju972oILP3WKNYGmsqpDmHNDS+Et2I3SP KCXP1z3q/vJr3Nr2m4kG3W2YmTOlZM0b8q+lfBzfo4HKKTmCyUUdLFmEYC4Uf4qp KPKqtB9g2/7dnvFnCUOnR9wE0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDXkluPP gXLXfRlCwu5i93tQSfenMB8GA1UdIwQYMBaAFJhziJeD91MOtEvgCXqjYYsHFo87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTMyMi80OUU0QjAwOEIw RUIxMUVFQjY5ODlGNTRDNEY5QUUwMi9tSE9JbDRQM1V3NjBTLUFKZXFOaGl3Y1dq enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21IT0lsNFAzVXc2MFMtQUplcU5oaXdjV2p6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjEzMjIvNDlFNEIwMDhCMEVCMTFFRUI2OTg5RjU0QzRGOUFFMDIvQTAyM0RENTZC MTJGMTFFRUIxMjIxRTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCqwwDQYJKoZIhvcNAQELBQADggEBAEfw8NkEpFzIaYYY phNeHZNuWTmIOuQOUQK905hFP5F5cTlIA4CxM2mWPgLdpvYgKBCBiG0aKe6XL04W HyjwLmQ1/ogVnW7Alqx06WelbOnLU6fDs1l2PR6TjWHdDSFwU7GPjzC/UQCAcxc0 q1wP6A6Kid/na0X+BpR+ASogRHZaBMUY5yKzEg9Qngru5tRGoTajBCFh54+DysTw M33+1G4TdVdYc4DEJjNTObqfm6mhdLvSb/sao1SNs3KBaJ5K5P0tgMTdyNW7wpMx Zkl5ixMnGXotWu51oj+CcKn3z1GtkVqFmUtfUgjhV8JoXz+ZzmndPvBeDJvF2LSl Rf6IssQ= -----END CERTIFICATE-----Generated at Wed Nov 5 16:43:52 2025 by rpki-client